T-Mobile – Page 5 – Computer Security Articles

Mobile Giants: Please Don’t Share the Where

May 22, 2018 admin 3Cinteractive, AT&T, Carnegie Mellon University, Latest Warnings, LocationSmart, Microsemi, Robert Xiao, Securus, Sprint, T-Mobile, The Coming Storm, Travis County Jail, Verizon, Virustotal.com

Credit to Author: BrianKrebs| Date: Tue, 22 May 2018 16:05:50 +0000

Your mobile phone is giving away your approximate location all day long. This isn’t exactly a secret: It has to share this data with your mobile provider constantly to provide better call quality and to route any emergency 911 calls straight to your location. But now, the major mobile providers in the United States — AT&T, Sprint, T-Mobile and Verizon — are selling this location information to third party companies — in real time — without your consent or a court order, and with apparently zero accountability for how this data will be used, stored, shared or protected. It may be tough to put a price on one’s location privacy, but here’s something of which you can be sure: The mobile carriers are selling data about where you are at any time, without your consent, to third-parties for probably far less than you might be willing to pay to secure it.

Independent Krebs

T-Mobile Employee Made Unauthorized ‘SIM Swap’ to Steal Instagram Account

May 18, 2018 admin A Little Sunshine, instagram, Latest Warnings, number port-out scams, Paul Rosenzweig, SIM block, SIM PIN, SIM swap, T-Mobile, The Coming Storm

Credit to Author: BrianKrebs| Date: Fri, 18 May 2018 18:35:24 +0000

T-Mobile is investigating a retail store employee who allegedly made unauthorized changes to a subscriber’s account in an elaborate scheme to steal the customer’s three-letter Instagram username. The modifications, which could have let the rogue employee empty bank accounts associated with the targeted T-Mobile subscriber, were made even though the victim customer already had taken steps recommended by the mobile carrier to help minimize the risks of account takeover. Here’s what happened, and some tips on how you can protect yourself from a similar fate.

Independent Krebs

Tracking Firm LocationSmart Leaked Location Data for Customers of All Major U.S. Mobile Carriers Without Consent in Real Time Via Its Web Site

May 17, 2018 admin A Little Sunshine, AT&T, data breaches, Latest Warnings, LocationSmart, Mario Proietti, panerabread.com breach, Securus, Securus Technologies, Sen. Ron Wyden, Sprint, T-Mobile, The Coming Storm, U.S. Federal Communications Commission, Verizon

Credit to Author: BrianKrebs| Date: Thu, 17 May 2018 18:29:18 +0000

LocationSmart, a U.S. based company that acts as an aggregator of real-time data about the precise location of mobile phone devices, has been leaking this information to anyone via a buggy component of its Web site — without the need for any password or other form of authentication or authorization — KrebsOnSecurity has learned. The company took the vulnerable service offline early this afternoon after being contacted by KrebsOnSecurity, which verified that it could be used to reveal the location of any AT&T, Sprint, T-Mobile or Verizon phone in the United States to an accuracy of within a few hundred yards.

Independent Krebs

How to Fight Mobile Number Port-out Scams

February 28, 2018 admin AT&T, Brian Rexroad, Latest Warnings, port-out scams, Sprint, T-Mobile, The Coming Storm, Verizon

Credit to Author: BrianKrebs| Date: Wed, 28 Feb 2018 14:46:30 +0000

T-Mobile, AT&T and other mobile carriers are reminding customers to take advantage of free services that can block identity thieves from easily “porting” your mobile number out to another provider, which allows crooks to intercept your calls and messages while your phone goes dark. Tips for minimizing the risk of number porting fraud are available below for customers of all four major mobile providers, including Sprint and Verizon.

Independent MotherBoard Security

T-Mobile Alerted ‘A Few Hundred Customers’ Targeted By Hackers

October 27, 2017 admin bug, cellphones, cybersecurity, hack, hacking, Sim, sim cards, T-Mobile

Credit to Author: Lorenzo Franceschi-Bicchierai| Date: Fri, 27 Oct 2017 15:50:38 +0000

T-Mobile has called customers targeted by hackers who were trying to take control of their SIM cards, alerting them of the hack attempts, and suggesting ways to secure their accounts.

Independent MotherBoard Security

There’s ‘No Excuse’ for the T-Mobile Bug That Helped Hackers Steal Accounts

October 11, 2017 admin bug, Bugs, cellphones, cybersecurity, hackers, hacking, IMSI, Information Security, infosec, Sim, T-Mobile

Credit to Author: Lorenzo Franceschi-Bicchierai| Date: Wed, 11 Oct 2017 18:57:56 +0000

Bugs happen to everyone, but the company failed to monitor for simple signs of abuse.

Independent MotherBoard Security

T-Mobile Website Allowed Hackers to Access Your Account Data With Just Your Phone Number

October 10, 2017 admin bug bounty, Bugs, cellphones, cybersecurity, hackers, hacking, IMSI, Information Security, infosec, T-Mobile

Credit to Author: Lorenzo Franceschi-Bicchierai| Date: Tue, 10 Oct 2017 18:03:43 +0000

The bug exposed customers’ email addresses, their billing account numbers, and the phone’s IMSI numbers. T-Mobile has patched the bug.

Independent Krebs

Gas Pump Skimmer Sends Card Data Via Text

July 27, 2017 admin GSM pump skimmers, Other, T-Mobile

Credit to Author: BrianKrebs| Date: Thu, 27 Jul 2017 11:08:59 +0000

Skimming devices that crooks install inside fuel station gas pumps frequently rely on an embedded Bluetooth component allowing thieves to collect stolen credit card data from the pumps wirelessly with any mobile device. The downside of this approach is that Bluetooth-based skimmers can be detected by anyone else with a mobile device. Now, investigators in the New York say they are starting to see pump skimmers that use cannibalized cell phone components to send stolen card data via text message.